3 matches found
Siemens Industrial Edge Management
1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: Industrial Edge Management Vulnerability: Improper Certificate Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to inject malicious maintenance requests...
CVE-2022-40147
A vulnerability has been identified in Industrial Edge Management All versions V1.5.1. The affected software does not properly validate the server certificate when initiating a TLS connection. This could allow an attacker to spoof a trusted entity by interfering in the communication path between...
CVE-2022-40147
CVE-2022-40147 affects Siemens Industrial Edge Management prior to v1.5.1. Root cause: improper TLS server-certificate validation, enabling an attacker to spoof a trusted entity by intercepting the client–server path. Impact is confidentiality and integrity loss (C/H, I/H), with no availability i...